Kindsight Mobile Security alerts subscribers when mobile malware is detected in the network and shows them which infected apps to remove

MOUNTAIN VIEW, CALIF. – December 12, 2012 – Kindsight, a network-based security company, today released new features for Kindsight Mobile Security to expand the protection mobile operators can offer their subscribers. Mobile operators can now alert users of suspicious apps that would be missed by device-only security apps, block infected devices from communicating with attackers’ command-and-control (C&C) servers, and help the subscriber locate missing phones and remotely lock or wipe data from stolen phones. Kindsight Mobile Security continues to be the only mobile security solution for consumers that combines network-based and device-based security for complete protection.

“There’s a lack of consumer understanding of mobile device vulnerabilities and threats,” said Jeff Wilson, principal analyst, security at Infonetics. “By deploying early threat detection in their networks and complimentary security apps on mobile devices, mobile operators can offer a complete mobile security solution to their subscribers and differentiate themselves from their competition.”

Building upon the existing network-based malware detection capabilities of the Kindsight Network Intrusion Detection System (NIDS-8800), Kindsight Mobile Security uses sophisticated techniques to infer the malicious apps that have infected the device by comparing activity detected in the network with suspicious apps on the device. When mobile malware is detected in the network, subscribers are not only alerted but also shown which infected apps to remove. This powerful functionality protects subscribers against new mobile malware before device-only security apps.

The Kindsight NIDS sensor can also block infected devices from communicating with C&C servers while deployed offline, preventing hackers from stealing data on mobile devices or launching other attacks. This blocking capability can also be configured to put infected devices into a walled garden or prevent them from accessing the network.

The Kindsight Mobile Security app has also been expanded to offer anti-theft features including:

Find and Locate Phone – If a subscriber loses their phone, they can log in to their service provider’s website to find its location. The webpage provides a snapshot of the phone’s whereabouts and the subscriber can also sound an alarm to locate the device.
Remote Lock and Wipe – Today’s mobile devices contain personal and sensitive information: photos, contacts, messages, etc. The Kindsight Mobile Security app now enables users to lock the device by setting a new passcode or wipe personal data when their phone is stolen or lost.

“Our mobile security solution is unique because it combines network-based detection and alerting capabilities with a mobile security app to detect more malware sooner which enables mobile operators to provide a truly differentiated service to consumers,” said Brendan Ziolo, vice president, marketing at Kindsight. “With these new features, our mobile security offering allows our mobile operator partners to provide a level of protection that is unsurpassed on the market today.

Mobile operators can deploy the white-labeled Kindsight Mobile Security solution to launch new value-added services to their subscribers under their own brand. These services can be offered for a monthly fee to generate new revenue or by using a freemium model where some functionality is offered for free and the subscriber can upgrade to the premium features for a fee. Since mobile operators are the only providers who can combine network-based and device-based security, by working with Kindsight they can offer a strongly differentiated offering to their subscribers as compared to off-the-shelf, device-only mobile security solutions.

To learn more about Kindsight Mobile Security, please visit: http://www.kindsight.net/serviceprovider/protecting-mobile-subscribers

Published: 2015-03-03Off-by-one error in the ecryptfs_decode_from_filename function in fs/ecryptfs/crypto.c in the eCryptfs subsystem in the Linux kernel before 3.18.2 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted filename.

Published: 2015-03-03** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue in customer-controlled software. Notes: none.

How can security professionals better engage with their peers, both in person and online? In this Dark Reading Radio show, we will talk to leaders at some of the security industry’s professional organizations about how security pros can get more involved – with their colleagues in the same industry, with their peers in other industries, and with the IT security community as a whole.